This is more of an information query than asking for help but oh well
For a request with a customer we need to generate Json web tokens tied to a certificate, and they require it with specific details (RSA up to 2048bit), not self-signed. The machine currently has Caddy and a handful of DNS records already working well, with the default key type (ed25519 it seems). So i want to use the certificades Caddy generates (On /var/lib/caddy/.local/share/caddy/certificates/acme-v02.api.letsencrypt.org-directory/domainname) since they’re fully valid and working, and even tied to the right domain name.
If i now manually set the key_type to “rsa2048”, will i cause harm? Or regenerate every certificate? Or just start affecting the next issued/renewed certificates? Or will it break something?
v2.7.4 on Debian 11
From the repository for Debian machines